From 373cfc5d10e9c3573f0942b939a4bb4e2df45758 Mon Sep 17 00:00:00 2001 From: James Grugett Date: Sun, 18 Sep 2022 16:23:07 -0500 Subject: [PATCH] Format firestore /group rules --- firestore.rules | 45 ++++++++++++++++++++++----------------------- 1 file changed, 22 insertions(+), 23 deletions(-) diff --git a/firestore.rules b/firestore.rules index 08214b10..79ae9f96 100644 --- a/firestore.rules +++ b/firestore.rules @@ -171,33 +171,32 @@ service cloud.firestore { allow read; } - match /groups/{groupId} { - allow read; - allow update: if (request.auth.uid == resource.data.creatorId || isAdmin()) - && request.resource.data.diff(resource.data) - .affectedKeys() - .hasOnly(['name', 'about', 'anyoneCanJoin', 'aboutPostId' ]); - allow delete: if request.auth.uid == resource.data.creatorId; + match /groups/{groupId} { + allow read; + allow update: if (request.auth.uid == resource.data.creatorId || isAdmin()) + && request.resource.data.diff(resource.data) + .affectedKeys() + .hasOnly(['name', 'about', 'anyoneCanJoin', 'aboutPostId' ]); + allow delete: if request.auth.uid == resource.data.creatorId; - match /groupContracts/{contractId} { - allow write: if isGroupMember() || request.auth.uid == get(/databases/$(database)/documents/groups/$(groupId)).data.creatorId - } + match /groupContracts/{contractId} { + allow write: if isGroupMember() || request.auth.uid == get(/databases/$(database)/documents/groups/$(groupId)).data.creatorId + } - match /groupMembers/{memberId}{ - allow create: if request.auth.uid == get(/databases/$(database)/documents/groups/$(groupId)).data.creatorId || (request.auth.uid == request.resource.data.userId && get(/databases/$(database)/documents/groups/$(groupId)).data.anyoneCanJoin); - allow delete: if request.auth.uid == resource.data.userId; - } + match /groupMembers/{memberId}{ + allow create: if request.auth.uid == get(/databases/$(database)/documents/groups/$(groupId)).data.creatorId || (request.auth.uid == request.resource.data.userId && get(/databases/$(database)/documents/groups/$(groupId)).data.anyoneCanJoin); + allow delete: if request.auth.uid == resource.data.userId; + } - function isGroupMember() { - return exists(/databases/$(database)/documents/groups/$(groupId)/groupMembers/$(request.auth.uid)); - } + function isGroupMember() { + return exists(/databases/$(database)/documents/groups/$(groupId)/groupMembers/$(request.auth.uid)); + } - match /comments/{commentId} { - allow read; - allow create: if request.auth != null && commentMatchesUser(request.auth.uid, request.resource.data) && isGroupMember(); - } - - } + match /comments/{commentId} { + allow read; + allow create: if request.auth != null && commentMatchesUser(request.auth.uid, request.resource.data) && isGroupMember(); + } + } match /posts/{postId} { allow read;